* Added protocol scan (-sO), which determines what IP protocols
(TCP, IGMP, GRE, UDP, ICMP, etc) are supported by a given host.
This uses a clever technique designed and implemented by Gerhard
Rieger .
* Nmap now recognizes more than 700 operating system versions and
network devices (printers, webcams, routers, etc) thanks to
thousands of contributions from the user community! Many
operating systems were even recognized by Nmap prior to their
official release. Nmap3 also recognizes 2148 port assignments,
451 SunRPC services, and 144 IP protocols.
* Added Idlescan (-sI), which bounces the scan off a "zombie"
machine. This can be used to bypass certain (poorly configured)
firewalls and packet filters. In addition, this is the most
stealthy Nmap scan mode, as no packets are sent to the target
from your true IP address.
* The base Nmap package now builds and functions under Windows! It
is distributed in three forms: build-it-yourself source code, a
simple command-line package, or along with a nice GUI interface
(NmapWin) and a fancy installer. This is due to the hard work of
Ryan Permeh (from eEye), Andy Lutomirski, and Jens Vogt.
* Mac OS X is now supported, as well as the latest versions of
Linux, OpenBSD, Solaris, FreeBSD, and most other UNIX platforms.
Nmap has also been ported to several handheld devices -- see the
Related Projects page for further information.
* XML output (-oX) is now available for smooth interoperability
between Nmap and other tools.
* Added ICMP Timestamp and Netmask ping types (-PP and -PM). These
(especially timestamp) can be useful against some hosts that do
not respond to normal ping (-PI) packets. Nmap still allows TCP
"ping" as well.
* Nmap can now detect the uptime of many hosts when the OS Scan
option (-O) is used.
* Several new tests have been added to make OS detection more
accurate and provide more granular version information.
* Removed 128.210.*.* addresses from Nmap man page examples due to
complaints from Purdue security staff.
* The --data_length option was added, allowing for longer probe
packets. Among other uses, this defeats certain simplistic IDS
signatures.
* You can now specify distinct port UDP and TCP port numbers in a
single scan command using a command like 'nmap -sSU -p
U:53,111,137,T:21-25,80,139,515,6000,8080 target.com'. See the
man page for more usage info.
* Added mysterious, undocumented --scanflags and --fuzzy options.
* Nmap now provides IPID as well as TCP ISN sequence
predictability reports if you use -v and -O.
* SYN scan is now the default scan type for privileged (root)
users. This is usually offers greater performance while reducing
network traffic.
* Capitalized all references to God in error messages.
* Added List scan (-sL) which enumerates targets without scanning
them.
* The Nmap "random IP" scanning mode is now smart enough to skip
many unallocated netblocks.
* Tons of more minor features, bugfixes, and portability enhancements.
and merge their patch collections. These two packages are built from the
same source tree, and updates to the main distfile should be shared by
both packages.
Changes since 1.0.2:
- NBTscan now returns meaningful exit code (patch by James Troup for Debian Linu
x)
- Added /etc/hosts and lmhosts format output (suggested by Anahuac de Paula Gil
and Sigmund Baginov)
- configure script now honours --prefix argument (patch by Petter Reinholdtsen)
- Error messages now include IP address that caused error
- NBTscan accepts a file with a list of IP addresses to scan (suggested by Omas
Jakobsson)
- Service number is printed for unknown NetBIOS services in -h mode (suggested b
y Dan Wright)
- Fixed some compile-time warnings on Linux
- Corrected some typos
re-enable it. My particular application used multi-user Btrieve 5.x
database that kept corrupting itself on samba-2.2.x, but worked flawlessly
under samba-2.0.x.
Collection.
Provided in PR 15687 by Ola Eriksson (ola@mrEriksson.net), modified by myself.
Flan is a network simluator written in java, and is now fully
functionnal. The IP protocol is implemented, with a quite complete
RIPv2 routing algorithm. The protocols are also written in java, so
GO AHEAD ! Flan is under GNU Public License, so download it, modify
it, and distribute it.
The networks are now encoded in XML, using XMLCoDe. This very useful
library (included in the flan tarball as jars) automatically creates
an XML image of a java object, like the flan nets (XMLCoDe is entirely
written by Sylvain Guerin).
ver 2.5:
New config option to keep tun device always open
iproute support
Fixes to support both Linux TUN/TAP drivers.
ver 2.5b1:
Encryption fixes: improved challenge generation, padding check.
Config parser fixes. Don't allow empty passwords.
New config option to specify syslog logging facility.
Support for new Linux TUN/TAP driver.
IO (read_n/write_n) cancellation.
Signal handling and other minor fixes.
Makefile improvement.
Documentation update.
Provided by Curt Sampson (cjs@netbsd.org)
Flow-tools is a set of utilties for collecting and storing NetFlow
data, and doing some limited analysis of it.
NetFlow is a Cisco-developed protocol for transferring network traffic
flow information (usually from a router or switch) to another system
that collects and stores this information. More information on NetFlow
is available at
http://www.cisco.com/warp/public/cc/pd/iosw/ioft/neflct/tech/napps_wp.htm
This is an updated and cleaned up version of the older ntop2 package.
ntop version 2 is a tool to sniff traffic on the network and display
statistics about it. It has a built-in web server for displaying the
results of the data it collects, and it can also generate data in
various formats (such as NetFlow) to be passed on to other systems.
Note that version 2 of ntop is significantly different from version 1.
It is much larger and has many more features. If you're looking for a
more light-weight tool, you may find that version 1 (the "ntop" package)
suits you better.
Differences from the previous version:
+ multi-threading has been enabled (it wouldn't compile otherwise)
+ dependencies have been specified properly
+ the Makefile has been cleaned up
+ two bugs in the configure script have been fixed
+ we now use a distfile that can be found
+ the homepage is the official ntop homepage
+ it appears that the editline emulation of GNU readline is sufficient
This is an updated and cleaned up version of the older ntop2 package.
ntop version 2 is a tool to sniff traffic on the network and display
statistics about it. It has a built-in web server for displaying the
results of the data it collects, and it can also generate data in
various formats (such as NetFlow) to be passed on to other systems.
Note that version 2 of ntop is significantly different from version 1.
It is much larger and has many more features. If you're looking for a
more light-weight tool, you may find that version 1 (the "ntop" package)
suits you better.
Differences from the previous version:
+ multi-threading has been enabled (it wouldn't compile otherwise)
+ dependencies have been specified properly
+ the Makefile has been cleaned up
+ two bugs in the configure script have been fixed
+ we now use a distfile that can be found
+ the homepage is the official ntop homepage
+ it appears that the editline emulation of GNU readline is sufficient
New version works fully under NetBSD 1.6_BETA, and also works on
some systems which failed to communicate with the USB modem correctlyt
under earlier versions. Additional fix to pkg/17531
Also, allow the arts SSE detection code to run on modern NetBSD systems.
Changes are:
arts
Again Build fixes.
Realtime priority configuration fix
kdelibs
dcop: Make it possible to disable the Qt bridge.
make sure tooltip effects can be configured.
kbuildsycoca: avoid crash on unreadable directories.
kdockwidget: fixing reading of configuration.
kedittoolbar: fix leak.
khtml: many fixes.
kded: signal handling fixes.
kio-http slave: fixes related to form posts and cache handling.
kjs: added max recursion limit.
kjs: leak and compatibility fixes.
kdebase
kicker: &-escaping fix
audiocd: fix cddb computation
thumbnail previewer: calculate the number of bytes to read instead
of hardcoding it.
